Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/1TVmhVM5hhrspZLaoyA9xhR1IUQ.roa
File: 1TVmhVM5hhrspZLaoyA9xhR1IUQ.roa (raw, json)
Hash identifier: dkdXTfp3hUq6YAf67Y+giWPPSUZyB2jf/et89pCLzEI=
Subject key identifier: D5:35:66:85:53:39:86:1A:EC:A5:92:DA:A3:20:3D:C6:14:75:21:44
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 019197924C331AD9A5844960472DC00FB2D2
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/1TVmhVM5hhrspZLaoyA9xhR1IUQ.roa
Signing time: Wed 28 Aug 2024 06:00:32 +0000
ROA not before: Wed 28 Aug 2024 06:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 213.145.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 20:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:97:92:4c:33:1a:d9:a5:84:49:60:47:2d:c0:0f:b2:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Aug 28 06:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d53566855339861aeca592daa3203dc614752144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:49:3e:1e:5c:fa:d6:e5:3d:7b:b3:64:d4:ac:
53:0f:00:73:84:d1:ce:0a:e0:66:8c:5a:aa:6f:67:
42:ba:c4:3c:8e:ba:e2:b7:d0:8b:2b:a2:88:8e:70:
ec:c1:7d:88:75:12:fc:46:2a:23:24:6e:bb:b6:6c:
c0:96:4a:94:1f:bb:3c:c0:97:ae:e4:a2:d6:7f:f9:
75:ff:fc:68:a7:63:23:70:00:c4:7e:90:ac:bd:b0:
59:cf:cd:39:b9:ac:49:45:42:2c:85:2f:29:ac:d7:
83:60:de:fe:1a:71:b7:45:0f:ac:7c:1c:5c:51:af:
bb:e4:fa:00:7a:0e:e8:f1:86:fa:89:77:b3:c5:b1:
2f:62:87:2f:a4:f5:c5:8c:ca:f7:d1:61:d9:91:96:
b1:6b:c2:76:3a:9e:56:01:0e:ec:44:19:e0:7c:38:
46:b0:c6:22:8b:0e:dc:a5:a6:23:01:ce:1a:56:9f:
43:da:5f:c2:5d:ee:33:48:17:d5:64:f3:7e:bc:95:
16:24:c3:30:1a:df:ef:d0:0e:19:91:0b:e3:bd:34:
d1:7d:00:37:1a:bc:47:76:e8:79:95:c4:de:98:5f:
00:15:d4:40:f7:9f:f5:4a:fc:58:b9:ca:ee:06:d9:
5c:70:0a:15:f3:56:18:a9:87:5a:26:02:89:a2:e8:
d6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:35:66:85:53:39:86:1A:EC:A5:92:DA:A3:20:3D:C6:14:75:21:44
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/1TVmhVM5hhrspZLaoyA9xhR1IUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.84.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ba:b4:13:eb:cb:03:79:65:59:49:90:1a:d8:6c:0d:9b:f2:
37:b1:98:95:33:6f:fd:e0:0e:e6:aa:9d:c4:62:0e:36:2b:b5:
0d:9b:a8:a4:96:79:cc:9c:f8:53:5e:b4:0a:31:21:88:ac:89:
72:18:bb:da:c7:11:74:6c:87:2a:c1:c9:c0:44:aa:78:82:66:
cc:ab:eb:60:51:78:94:ac:12:e8:fb:45:57:34:76:36:5d:8c:
05:03:f5:40:27:04:00:5b:7b:5f:c4:93:8f:4d:92:91:2a:17:
45:07:32:cf:f0:85:49:cd:c8:1c:26:a7:79:5b:28:fa:9f:a7:
08:7a:62:9c:86:4d:8a:62:84:0e:6e:fe:9b:eb:5c:ae:ae:19:
ee:d3:92:1c:7e:e7:b6:78:ce:a0:54:b9:08:a3:91:b3:b0:18:
55:34:e3:c9:e5:6c:7b:7e:ae:f5:0a:c1:93:0e:42:7d:ab:ce:
9d:d1:9d:6b:89:a9:b2:20:af:d2:ba:b3:0a:6f:c8:5e:d1:49:
93:5a:26:b8:3a:ea:5c:a9:6a:5a:eb:4d:51:4d:1f:cd:3a:ff:
c7:db:2b:15:5c:ce:a2:41:3b:da:ff:46:25:c8:97:44:e6:a4:
e8:aa:7c:b8:df:57:41:f5:33:a7:b5:87:9a:36:a9:fa:15:25:
37:77:69:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGXkkwzGtmlhElgRy3AD7LSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQwODI4MDYwMDMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTM1NjY4NTUzMzk4NjFhZWNhNTkyZGFhMzIwM2RjNjE0NzUyMTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUk+Hlz61uU9e7Nk1KxTDwBzhNHO
CuBmjFqqb2dCusQ8jrrit9CLK6KIjnDswX2IdRL8RiojJG67tmzAlkqUH7s8wJeu
5KLWf/l1//xop2MjcADEfpCsvbBZz805uaxJRUIshS8prNeDYN7+GnG3RQ+sfBxc
Ua+75PoAeg7o8Yb6iXezxbEvYocvpPXFjMr30WHZkZaxa8J2Op5WAQ7sRBngfDhG
sMYiiw7cpaYjAc4aVp9D2l/CXe4zSBfVZPN+vJUWJMMwGt/v0A4ZkQvjvTTRfQA3
GrxHduh5lcTemF8AFdRA95/1SvxYucruBtlccAoV81YYqYdaJgKJoujWJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNU1ZoVTOYYa7KWS2qMgPcYUdSFEMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvMVRWbWhWTTVoaHJzcFpMYW95QTl4aFIxSVVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZFUMA0G
CSqGSIb3DQEBCwUAA4IBAQBKurQT68sDeWVZSZAa2GwNm/I3sZiVM2/94A7mqp3E
Yg42K7UNm6iklnnMnPhTXrQKMSGIrIlyGLvaxxF0bIcqwcnARKp4gmbMq+tgUXiU
rBLo+0VXNHY2XYwFA/VAJwQAW3tfxJOPTZKRKhdFBzLP8IVJzcgcJqd5Wyj6n6cI
emKchk2KYoQObv6b61yurhnu05Icfue2eM6gVLkIo5GzsBhVNOPJ5Wx7fq71CsGT
DkJ9q86d0Z1riamyIK/SurMKb8he0UmTWia4OupcqWpa601RTR/NOv/H2ysVXM6i
QTva/0YlyJdE5qToqny431dB9TOntYeaNqn6FSU3d2lD
-----END CERTIFICATE-----
Generated at Tue Sep 3 23:40:54 2024 by rpki-client on console-ams.rpki-client.org